General

  • Target

    13f014d793ab8bf892432cf96e1e4f4a82c72ef56a08dcc51ea1e80bfc5c65e4

  • Size

    5.2MB

  • Sample

    231205-ezryvahe68

  • MD5

    13e07db036ae6fbfa6591db83de20260

  • SHA1

    224aeda7c6eb9e5cbb328773d8553c495c7c4fe6

  • SHA256

    13f014d793ab8bf892432cf96e1e4f4a82c72ef56a08dcc51ea1e80bfc5c65e4

  • SHA512

    88d3c43ca4923d5d527a1b7c520606e6bca7677508e950589edb183f0ad2d3b203f8df778812d3be4d2e3c9e20c53d3ef7af7b27ecfad8093d0219da584bf2a9

  • SSDEEP

    98304:7beTBddiH4Ckg+OB6h8p5qzFIWMII+d1TFmha3xLzeQjaeoZnRbYGfE6OpH3j/4B:7C1PCZ+Vh8ydMIZmh8ZoZREwojwZR

Score
8/10

Malware Config

Targets

    • Target

      13f014d793ab8bf892432cf96e1e4f4a82c72ef56a08dcc51ea1e80bfc5c65e4

    • Size

      5.2MB

    • MD5

      13e07db036ae6fbfa6591db83de20260

    • SHA1

      224aeda7c6eb9e5cbb328773d8553c495c7c4fe6

    • SHA256

      13f014d793ab8bf892432cf96e1e4f4a82c72ef56a08dcc51ea1e80bfc5c65e4

    • SHA512

      88d3c43ca4923d5d527a1b7c520606e6bca7677508e950589edb183f0ad2d3b203f8df778812d3be4d2e3c9e20c53d3ef7af7b27ecfad8093d0219da584bf2a9

    • SSDEEP

      98304:7beTBddiH4Ckg+OB6h8p5qzFIWMII+d1TFmha3xLzeQjaeoZnRbYGfE6OpH3j/4B:7C1PCZ+Vh8ydMIZmh8ZoZREwojwZR

    Score
    8/10
    • Drops file in Drivers directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Matrix

Tasks